I think a video on your thought process during a pentest would definitely help new people.

What methodology do you use?How do you think outside the box when you can't find a way in? etc..

The thought process is something that has always interested me. Having the tools and security knowledge is great but having the creativity and imagination to try different attacks when you're stuck, is what set's hackers apart. <--- Just my opinion

Videos on logic and deductive reasoning would be very useful. This is really what it comes down to, but it's hard to make people think outside the box. We naturally operate under a set of constraints, many times self-imposed and getting people to understand new ways of thinking is huge.

Yes getting people to think outside the box is really hard I think the only way that can be done is by having live images that people can poke around with stuff like the de-ice disk it would be really good if there were more de-ice created by the security community.

No, I'm not referring to hacking specific examples. I just mean learning how to think and then applying those skills to breaking things. You have to walk before you can run. But then again, it won't be as popular because there's no shell at the end.

YuckTheFankees wrote:I think a video on your thought process during a pentest would definitely help new people.

What methodology do you use?How do you think outside the box when you can't find a way in? etc..

The thought process is something that has always interested me. Having the tools and security knowledge is great but having the creativity and imagination to try different attacks when you're stuck, is what set's hackers apart. <--- Just my opinion

Perfect! Have the camera on you, sitting there with a look of determination on your face... tapping your finger... pounding some redbull... then after about 10 mins, slap the table and yell "That's the ticket!" and.... Scene!

300K Youtube hits easy!

On the other hand you could go over a scenario, do some slides with diagrams on what is going on, show the areas of interest and explain which possible ways you can go to exploit item. One of the biggest things I've learned in InfoSec is making myself think like the attacker. For someone who spent lots of time simply setting up systems and hardening them just because it was what I was taught to do, I felt a new joy switching my thinking to "now what would the bad guy do if he came across this box?"

3xban wrote:Perfect! Have the camera on you, sitting there with a look of determination on your face... tapping your finger... pounding some redbull... then after about 10 mins, slap the table and yell "That's the ticket!" and.... Scene!